[Solved] Having linux ldappasswd also update windows password hashes

To: debian-user@lists.debian.org
Subject: [Solved] Having linux ldappasswd also update windows password hashes
From: Sjoerd Hardeman <sjoerd@lorentz.leidenuniv.nl>
Date: Thu, 03 Sep 2009 10:17:20 +0200
Message-id: <[🔎] 4A9F7B90.50401@lorentz.leidenuniv.nl>
In-reply-to: <[🔎] 4A9D924F.5080209@lorentz.leidenuniv.nl>
References: <[🔎] 4A9D924F.5080209@lorentz.leidenuniv.nl>

Sjoerd Hardeman schreef:

Hi list,

I am managing an ldap which contains a unix password field, which is
nicely updated by the passwd command via exop. All fine. The only
problem is that the LM and NT windows hashes are not updated. I need
these fields since I need to support chap authentication, and also some
windows based networking.
The other way, using smbldap-passwd -u %user, works fine. One option
would probably be to include a pam_winbind.so in all of the clients
pam.d/common-password, and pointing the clients to the proper winbind
server. Yet, I hope there's also an easier method. Any ideas?

I solved the problem by compiling and using the smbk5pwd overlay forslapd (which is provided in the sources, but not compiled in thedistributed bin).On this site http://student.physik.uni-mainz.de/~reiffert/smbk5pwd.htmlthere is a diff for the makefile that prevents compiling against theheimdal libs.


Sjoerd

Attachment: signature.asc
Description: OpenPGP digital signature

Reply to:

References:
- Having linux ldappasswd also update windows password hashes
  - From: Sjoerd Hardeman <sjoerd@lorentz.leidenuniv.nl>

Prev by Date: Re: Forming drives together into a cache hierarchy
Next by Date: Re: Getting an alternative email based issue tracker to work
Previous by thread: Having linux ldappasswd also update windows password hashes
Next by thread: Updating our Terms of Service and Privacy Policy
Index(es):
- Date
- Thread